Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
File: hkEGVA8wqdzfjvm-cv_vi9inLlw.mft (raw, json)
Hash identifier: XH9/2+zqEFGT6JJ65oUkIxaSO5r66Ni/ztgQ10trYjk=
Subject key identifier: 9B:72:15:DF:00:D1:31:6A:3C:2B:8E:7C:C5:0B:2E:1A:65:9E:6E:68
Authority key identifier: 86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C
Certificate issuer: /CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c
Certificate serial: 019A7149E88DC4A3B2B27806054FF67CFB8F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
Manifest number: 1722
Signing time: Tue 11 Nov 2025 05:01:00 +0000
Manifest this update: Tue 11 Nov 2025 05:01:00 +0000
Manifest next update: Wed 12 Nov 2025 05:01:00 +0000
Files and hashes: 1: XPrFj5zrogqrQA0ZGMw9Cj_3tIM.roa (hash: y5bDj30kHbVlnej3Qo9ZyWbBqUGtip3DeFT5c1pzf8I=)
2: hkEGVA8wqdzfjvm-cv_vi9inLlw.crl (hash: m2565Er1io3Nx8zlHydq4rgBKFpfw7Juzk9sdyQml0E=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl
rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Wed 12 Nov 2025 05:01:00 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9a:71:49:e8:8d:c4:a3:b2:b2:78:06:05:4f:f6:7c:fb:8f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=864106540f30a9dcdf8ef9be72ffef8bd8a72e5c
Validity
Not Before: Nov 11 05:01:00 2025 GMT
Not After : Nov 12 05:01:00 2025 GMT
Subject: CN=9b7215df00d1316a3c2b8e7cc50b2e1a659e6e68
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:99:51:6a:bd:42:dc:6f:cc:f7:51:3f:b7:86:a2:
75:76:eb:52:01:06:a3:0a:94:4f:f8:39:43:d6:b9:
29:54:b9:32:44:c4:0a:fe:a8:52:44:de:b7:97:0e:
2a:d0:b4:db:22:a9:53:82:b4:82:5e:71:92:46:b8:
ba:0f:2d:e5:86:ef:e2:41:9a:6f:68:ce:1d:b5:7a:
0f:2b:57:37:90:4e:9d:ae:7f:f7:f1:5b:c1:d5:fd:
c1:05:ec:d9:67:77:a0:3c:78:dd:fc:77:61:6d:45:
95:75:48:40:59:b6:18:02:22:6e:8e:07:e1:bc:de:
5e:21:26:69:2e:a2:65:0a:a2:e9:45:7f:d0:fa:bb:
68:29:56:08:d4:eb:db:d4:7c:ef:19:d4:86:83:fe:
7b:37:89:cf:c7:c6:29:bf:84:23:a6:11:e6:bb:72:
25:9d:88:29:d9:87:ae:7a:36:1e:ad:c6:59:df:b4:
2a:75:5a:e6:a5:47:ff:63:13:9b:b4:c5:24:64:a5:
ca:72:f6:b0:91:6a:48:a6:a9:c7:eb:72:f4:7f:bd:
a8:59:db:3f:78:77:ce:59:e0:af:61:51:5c:72:51:
32:69:8a:b9:e6:2d:38:78:9f:48:93:ff:18:9c:bd:
b1:ad:c8:83:bf:c7:b2:a4:44:de:1b:12:60:e1:50:
df:59
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
9B:72:15:DF:00:D1:31:6A:3C:2B:8E:7C:C5:0B:2E:1A:65:9E:6E:68
X509v3 Authority Key Identifier:
keyid:86:41:06:54:0F:30:A9:DC:DF:8E:F9:BE:72:FF:EF:8B:D8:A7:2E:5C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/hkEGVA8wqdzfjvm-cv_vi9inLlw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/52/0be7f2-638d-4f45-b697-3b318e47276d/1/hkEGVA8wqdzfjvm-cv_vi9inLlw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
92:b7:be:45:bc:91:ac:2a:3d:54:fc:33:be:90:56:b4:0a:a8:
09:79:7f:ba:92:35:ff:b8:35:47:7e:f7:7f:c7:d5:83:13:7e:
3f:b6:8e:07:58:c0:75:54:2a:b1:d4:ff:39:09:06:d4:19:56:
62:10:60:49:9f:76:cc:ed:1a:b7:2b:6b:ee:a9:da:32:68:5a:
0f:88:bc:1a:d9:a8:6c:6e:7e:52:9f:dd:bb:01:63:f6:f3:98:
62:ae:56:e4:2b:3e:ff:1f:3a:66:6b:87:0a:55:5b:3a:33:5c:
53:e3:70:08:f1:b2:ac:70:47:e1:9f:2f:8a:62:fe:ec:0f:8b:
5f:21:0e:e3:92:a7:1d:06:3a:cd:19:31:48:fe:6a:cc:2d:69:
2d:0b:4c:1a:2f:a5:fe:3c:5b:91:2f:44:b4:18:6c:c1:98:5b:
10:3b:8d:32:27:27:83:d6:74:a2:3c:03:67:d6:d9:1a:22:c4:
a8:49:d9:69:d4:eb:b1:0d:dc:d7:62:d8:2b:46:7c:51:23:b6:
17:0f:a3:c1:ce:26:01:f2:8f:fc:b9:51:85:ac:6b:4c:02:f4:
3a:4c:2b:4c:ad:d6:a4:93:4b:4c:e1:10:dd:67:65:10:85:64:
c2:41:7b:3b:39:55:eb:fb:aa:dd:e9:9a:30:0d:8e:1a:d4:c8:
00:43:2e:3b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue Nov 11 11:47:33 2025 by rpki-client